1. 08 Aug, 2016 1 commit
    • Aaron Wells's avatar
      Bug 1570221 Don't print parameter values to logs when in production mode · 9a297249
      Aaron Wells authored
      The best way to prevent sensitive data from being printed to the logs
      is to avoid printing the value of *any* parameter. For instance, a
      password parameter may have an unusual name, or it may be passed
      through a general-purpose function like "strlen()".
      
      Since parameter values are useful for debugging, we can still print
      them when not in production mode (although with known password
      params still scrubbed out).
      
      Note this patch both scrubs likely password params, and hides their
      scrubbed value. That's mostly because I'm lazy, but it also obscures
      the password's actual length.
      
      Change-Id: I4a1ab4c89a169c6b29a7b63384c2412cee761ab7
      behatnotneeded: Can't test with behat
      9a297249
  2. 26 May, 2016 1 commit
  3. 21 Apr, 2016 1 commit
    • Robert Lyon's avatar
      Bug 1565546: Allowing $cfg setting to be json · af64abec
      Robert Lyon authored
      1) Allowing $CFG to accept json encoded strings and to be decoded back to php
      2) Making the $cfg->openbadgedisplayer_source a json encoded string
      3) Allowing the openbadges have the defaults only on one place and warn when they are missing
      
      behatnotneeded
      
      Change-Id: Ica0349d6343d9f608b2272117d7412b288799278
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      af64abec
  4. 31 Mar, 2016 1 commit
  5. 30 Mar, 2016 2 commits
    • Aaron Wells's avatar
      Bug 1332373: Add 19-character dbprefix limit to documentation · 240befff
      Aaron Wells authored
      Based on the maximum database object name length in Postgres,
      and the longest names of objects we're currently using, 19
      characters is the hard limit. (Technically... 25 characters
      for MySQL. But why confuse things?)
      
      We're actively testing on test.mahara.org with a 19-character
      db prefix, so I think it's safe to tell the users that they
      can use one that long.
      
      Change-Id: Id13ee82ca70780791870782b8465695366cee8eb
      behatnotneeded: comment change only
      240befff
    • Aaron Wells's avatar
      Bug 1544808: Remove unneeded settings from config-dist.php · e47c7859
      Aaron Wells authored
      Change-Id: I7241f62534ca42e2d610baccf7a705af626ced56
      behatnotneeded: Can't be tested by behat
      e47c7859
  6. 02 Mar, 2016 1 commit
  7. 11 Nov, 2015 1 commit
    • Jono Mingard's avatar
      Remove unused and superfluous JavaScript (Bug #1323920) · a4dc90b3
      Jono Mingard authored
      Some of these files aren't loaded on any pages, some (ie. debug.js)
      are no longer necessary with modern debugging tools, and some have
      been replaced by Bootstrap functionality
      
      behatnotneeded: should be functionally identical
      
      Change-Id: I6d1b3874de5d42ccc00a8c0d2bb0e8bc162747d4
      a4dc90b3
  8. 20 Oct, 2015 1 commit
  9. 19 Oct, 2015 1 commit
  10. 09 Oct, 2015 1 commit
  11. 15 Sep, 2015 1 commit
  12. 13 Aug, 2015 1 commit
  13. 06 Jul, 2015 1 commit
  14. 25 Jun, 2015 1 commit
    • Aaron Wells's avatar
      More robust handling of Elasticsearch bulk operations · f7194ce1
      Aaron Wells authored
      Bug 1457712. This patch accomplishes four main things:
      
      1. Sets a limit on the number on the number of documents
      per Elasticsearch bulk request.
      
      2. Doesn't delete records from the queue table until
      after they have been successfully sent
      
      3. If a bulk request fails, later retries the records
      individually
      
      4. Performs deletion in bulk
      
      Change-Id: I9ac5e3a33b473e256fdf331800dc60101c126dcc
      f7194ce1
  15. 15 Jun, 2015 1 commit
  16. 29 May, 2015 1 commit
  17. 17 Apr, 2015 1 commit
    • Aaron Wells's avatar
      Changes to make the TinyMCE 4.1 spellchecker work · a42e68b4
      Aaron Wells authored
      Note that this drops support for the $CFG->pathtoaspell
      setting, and replaces it with a new $CFG->tinymcespellcheckerengine
      setting.
      
      Bug 1384491
      
      Change-Id: I1692df6ed7a4c6ea3ea98e32855736e11e40dc66
      a42e68b4
  18. 14 Apr, 2015 1 commit
  19. 19 Mar, 2015 1 commit
  20. 28 Oct, 2014 1 commit
  21. 06 Oct, 2014 1 commit
  22. 01 Jul, 2014 1 commit
  23. 02 Apr, 2014 3 commits
  24. 25 Mar, 2014 1 commit
    • Aaron Wells's avatar
      Prevent new users from taking spammy actions · 7b08f438
      Aaron Wells authored
      Bug 1252101
      
      1. New users get 2 "new user points" on their user record
      
      2. While they have these, they're on probation and can't post
      links in public places, or make public pages.
      
      3. "new user points" are decreased each time a non-probationary
      user responds to a forum post by the user
      
      4. Admins & Staff are automatically non-probationary
      
      Change-Id: Ibccd2e330945f66b07aac062c4f51b67a0c0dba2
      7b08f438
  25. 09 Mar, 2014 1 commit
  26. 27 Feb, 2014 1 commit
    • Aaron Wells's avatar
      Replace obsolete TinyMCE GoogleSpell with in-browser spellcheck as default · 75797883
      Aaron Wells authored
      Bug 1212541: The web service the TinyMCE GoogleSpell code was using,
      is no longer in existence. This patch changes things so that TinyMCE will
      let the browser's spellchecker work, by default.
      
      The "pathtoaspell" is now null by default. If pathtoaspell is null, we
      eliminate the TinyMCE spellcheck button and set the "gecko_spellcheck"
      flag to let the browser spellcheck work. If pathtoaspell is not null,
      we show the TinyMCE spellcheck button as before.
      
      Change-Id: I9fd2b12169669d3d9705a1e23dc6c03af6f01948
      75797883
  27. 29 Jan, 2014 1 commit
  28. 22 Jan, 2014 1 commit
  29. 13 Jan, 2014 2 commits
    • Aaron Wells's avatar
      Silence most E_STRICT errors · 8d17e071
      Aaron Wells authored
      Bug 1268746: In PHP 5.4 E_ALL changed to include E_STRICT, causing Mahara to throw
      a lot of strict standards errors. This should silence most of them.
      
      HOWEVER, because most strict standards happen at compile-time, this will have no
      effect on strict standards errors caused in the files that have already been
      loaded by the time we call error_reporting() and set_error_handler(), which includes:
       - The file invoked directly by the URL
       - init.php
       - errors.php
       - config.php
       - config-defaults.php
      
      Change-Id: I7a7fdf7facb1f30e186a0e8a27f1c3b7473200da
      8d17e071
    • Aaron Wells's avatar
      Updating $cfg->productionmode description · 2d0a6ccd
      Aaron Wells authored
      Change-Id: Ic4cf6ce503c340c4f2833e5b6b81d7271b0edafe
      2d0a6ccd
  30. 06 Jan, 2014 1 commit
  31. 31 Dec, 2013 1 commit
  32. 17 Dec, 2013 1 commit
  33. 15 Dec, 2013 1 commit
    • Aaron Wells's avatar
      Allow a $cfg->bounces_ratio of 0 · 044a5f39
      Aaron Wells authored
      Bug 1261233: If you set the ratio to 0, you'll bounce someone
      as soon as they hit bounces_min, regardless of what the sent/bounced
      ratio is
      
      Change-Id: Ibe8223054fa70ea27748d78b099afa079be7f900
      044a5f39
  34. 19 Nov, 2013 1 commit
  35. 12 Nov, 2013 1 commit
  36. 11 Nov, 2013 1 commit